Functor Nocrypto.Rsa.PSS

module PSS: functor (H : Nocrypto.Hash.S) -> sig .. end

PSS-based signing, as defined by PKCS #1 v2.1.

The same hash function is used for padding, MGF and computing message digest. MGF is MGF1 as defined in PKCS #1 2.1.

Keys must have a minimum of 2 + hlen + slen bytes, where hlen is the hash length and slen is the seed length.

Parameters:

H : Nocrypto.Hash.S

val sign : ?g:Nocrypto.Rng.g ->
       ?slen:int -> key:Nocrypto.Rsa.priv -> Cstruct.t -> Cstruct.t

sign ~g ~slen ~key message the -padded digest of message, signed with the key. slen is the optional seed length and default to the size of the underlying hash function.
Raises Insufficient_key (see Insufficient_key)

val verify : ?slen:int -> key:Nocrypto.Rsa.pub -> signature:Cstruct.t -> Cstruct.t -> bool

verify ~slen ~key ~signature message checks whether signature is a valid PSS signature of the message under the given key.